$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft File: cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json) Hash identifier: cy2v6NPjchTs5q0Pn60XXARnf9jSKdOOIu+aHvvLHtE= Subject key identifier: 7D:A5:09:E0:3B:A4:46:93:7E:EA:53:3E:05:57:10:4B:FA:21:1F:07 Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft Manifest number: 01AB Signing time: Mon 21 Jul 2025 03:19:28 +0000 Manifest this update: Mon 21 Jul 2025 03:19:28 +0000 Manifest next update: Mon 28 Jul 2025 03:19:28 +0000 Files and hashes: 1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: lvmcLUtkjGCRznV0b+EBfeH7X8ailTT+PBkCDg+0P7k=) 2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: ViKM5e5iyaoZ2fwSNhoyHsddKA5yuwX0C7qKIyKJX7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:19:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128, serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: Jul 21 03:19:28 2025 GMT Not After : Jul 28 03:19:28 2025 GMT Subject: CN=687db1c0-015e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cf:0b:71:73:83:00:cd:dd:e2:f1:77:42:fd: 1c:30:64:ae:27:df:77:49:48:9c:02:7c:29:23:1a: 64:f3:75:46:37:8d:89:94:14:27:b2:4a:6d:97:33: 23:6c:1d:d4:f1:aa:0d:e2:8e:c7:4a:09:2f:a7:c7: 92:27:38:72:20:fd:5a:7a:84:6e:2a:0b:b0:9a:09: 5d:95:a2:c8:78:71:7c:a1:83:84:aa:5d:a3:38:8e: 79:65:ef:b1:ba:4e:2f:ff:b1:57:fd:a4:1f:4b:da: ae:f6:a4:85:51:54:26:8a:c5:0a:0e:d1:1f:e2:aa: e5:1c:65:69:e7:08:94:3a:51:75:b6:f0:fc:f6:56: ff:6e:89:b4:7e:f7:89:a2:b3:78:90:3b:5b:ec:a8: 34:3a:30:71:83:ab:b1:72:d9:2b:45:84:ce:c0:c4: 73:1c:9d:be:1c:60:6b:36:ad:07:19:54:ca:d5:13: 78:d0:d6:6d:70:27:7d:cb:9e:50:34:05:13:e6:75: 43:1a:d0:a6:24:40:47:2d:8c:45:21:27:c4:fb:a0: 37:80:ec:f1:09:b7:53:87:4d:d6:3f:8a:ad:f8:2a: 51:b2:47:0e:ea:69:bc:c5:d0:51:71:85:95:7d:6c: fe:1d:91:6e:39:23:38:48:ad:80:93:00:38:43:61: 93:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A5:09:E0:3B:A4:46:93:7E:EA:53:3E:05:57:10:4B:FA:21:1F:07 X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:e3:54:24:77:1e:c0:dd:4e:5d:ee:e1:fd:3b:3a:70:d5:41: e7:3d:d5:d7:85:79:20:fb:fc:2d:96:45:f2:8a:45:1a:f5:1d: ae:c6:85:26:46:8c:19:df:79:56:45:cb:cb:1f:da:0d:75:25: f0:fd:ab:07:9f:91:1c:49:c7:37:ae:6b:e1:ad:48:b3:c2:d1: 6f:1f:80:1b:2a:05:aa:aa:01:8b:02:f4:fa:e7:18:a7:30:94: 2a:f7:99:ef:0b:c0:b2:3b:83:02:74:50:0a:23:a5:ee:8e:36: db:d0:e2:19:2d:82:0b:d2:ba:a8:7e:17:5d:3c:e3:ce:6a:55: f9:28:a3:47:a3:d2:a5:ef:ff:4b:2b:38:ac:ee:80:35:0d:06: 50:02:cf:b2:fd:48:f9:1e:bb:94:2a:48:58:32:bc:40:52:e1: 8d:d9:03:9e:33:7e:a8:1c:54:2d:11:ca:65:31:76:33:24:30: 06:a8:5e:58:f3:f9:a8:fc:54:e5:38:9b:25:aa:02:47:22:d0: f3:75:e3:61:86:8b:25:e9:1d:c9:f4:d7:d6:74:6e:23:1e:62: 93:27:79:95:a8:62:aa:33:7c:01:4e:48:f1:e6:0a:42:05:69: 6c:bc:4c:36:c4:a6:d0:ab:02:59:9c:43:cb:0f:de:09:6f:08: 42:58:22:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjUwNzIxMDMxOTI4WhcNMjUwNzI4MDMxOTI4WjAYMRYwFAYD VQQDEw02ODdkYjFjMC0wMTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s8LcXODAM3d4vF3Qv0cMGSuJ993SUicAnwpIxpk83VGN42JlBQnskptlzMj bB3U8aoN4o7HSgkvp8eSJzhyIP1aeoRuKguwmgldlaLIeHF8oYOEql2jOI55Ze+x uk4v/7FX/aQfS9qu9qSFUVQmisUKDtEf4qrlHGVp5wiUOlF1tvD89lb/bom0fveJ orN4kDtb7Kg0OjBxg6uxctkrRYTOwMRzHJ2+HGBrNq0HGVTK1RN40NZtcCd9y55Q NAUT5nVDGtCmJEBHLYxFISfE+6A3gOzxCbdTh03WP4qt+CpRskcO6mm8xdBRcYWV fWz+HZFuOSM4SK2AkwA4Q2GTiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2lCeA7 pEaTfupTPgVXEEv6IR8HMB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjEyOC83QkYyM0FDNERERTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZO ZERzVklENG13aUJHLWlRSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC41Qkdx7A3U5d7uH9Ozpw1UHnPdXXhXkg+/wtlkXyikUa9R2uxoUm RowZ33lWRcvLH9oNdSXw/asHn5EcScc3rmvhrUizwtFvH4AbKgWqqgGLAvT65xin MJQq95nvC8CyO4MCdFAKI6Xujjbb0OIZLYIL0rqofhddPOPOalX5KKNHo9Kl7/9L Kzis7oA1DQZQAs+y/Uj5HruUKkhYMrxAUuGN2QOeM36oHFQtEcplMXYzJDAGqF5Y 8/mo/FTlOJslqgJHItDzdeNhhosl6R3J9NfWdG4jHmKTJ3mVqGKqM3wBTkjx5gpC BWlsvEw2xKbQqwJZnEPLD94JbwhCWCKQ -----END CERTIFICATE-----Generated at Mon Jul 21 05:42:01 2025 by rpki-client